Security

General discussion

Creator

Topic
September 27, 2000 at 7:00 pm #2079067

Hacking into Web Site

Locked

by locuslink · about 24 years, 7 months ago

One of my web sites runs on IIS 4 with NT 4 and NT service pack 6a. The site consists of asp pages with an asa page which sets sessions to the SQL 7 server for database queries. SQL 7 is running on another box and not on the Web server. I am currently experiencing a situation where several persons are using the following command to expose the username and password that is used by the asa page to create a session to the SQL server:

“http://WWW.Websitename/GLOBAL.ASA%20+.HTR”

Which securitypatch for IIS should be applied here – or is there a service pack available for IIS that could be used here?

Appreciate any help here. Thank you

This conversation is currently closed to new comments.
Creator

Topic

All Comments

Author

Replies
- September 28, 2000 at 1:38 am #3750848
  
  Hacking into Web Site
  
  by launenhaft · about 24 years, 7 months ago
  
  In reply to Hacking into Web Site
  
  This might help
  
  http://support.microsoft.com/support/kb/articles/Q260/0/69.ASP
  - September 28, 2000 at 3:33 am #3749738
    
    Hacking into Web Site
    
    by locuslink · about 24 years, 7 months ago
    
    In reply to Hacking into Web Site
    
    Poster rated this answer
- September 28, 2000 at 3:33 am #3749737
  
  Hacking into Web Site
  
  by locuslink · about 24 years, 7 months ago
  
  In reply to Hacking into Web Site
  
  This question was closed by the author
Author

Replies

Viewing 1 reply thread

Start a Discussion

Start New Discussion